PRIMECLUSTER includes the following facilities for cluster communications if you do not want to use .rhosts:

• cfcp/cfsh

• sshconf (not supported by Wizard Tools)

These tools are provided to allow cluster configuration in an environment which does not permit rsh and rcp. They are specialized utilities that do not provide all the functionality of rsh and rcp and are not intended as replacements.

CF includes the ability to allow cluster nodes to execute commands on another node (cfsh) and to allow cluster nodes to copy files from one node to another (cfcp). However, this means that your cluster interconnects must be secure since any node that can join the cluster has access to these facilities. Because of this, these facilities are disabled by default.

PRIMECLUSTER 4.1 and higher offers a chance to configure these facilities. As one of the final steps of the CF Configuration Wizard in the Cluster Adm GUI, there are two checkboxes. Checking one enables remote file copying and checking the other enables remote command execution.

To enable remote access using cfcp/cfsh, set the following parameters in cluster.config:

CFCP "cfcp" 
CFSH "cfsh"

To deactivate, remove the settings from the /etc/default/cluster.config file and run cfset -r.

Refer to the section "1.1.2 cfset" in this chapter for more information.

You can use the sshconf tool to set up non-interactive ssh access among a list of nodes. Running sshconf is similar to setting up the .rhosts file for rsh.

sshconf uses the RSA authentication method and protocol version 2. If it exists, sshconf uses the default authentication key $HOME/.ssh/id_rsa, or it creates the key it if does not already exist.